CVE-2018-2696 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2018-2696 Interim 1 16 2024-07-27T00:39:07Z current 2021-05-30T14:07:24Z 2024-07-27T00:39:07Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2018-2696 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/N63QDAZ62SQMYAFGJFRXU5HS26COSGB4/#N63QDAZ62SQMYAFGJFRXU5HS26COSGB4 E-Mail link for openSUSE-SU-2018:0223-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP3 LTSS SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 libmysql55client_r18-32bit libmysql55client_r18-x86 libmysqlclient-devel libmysqlclient_r15-32bit libmysqlclient_r15-x86 mysql mysql as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata mysql as a component of SUSE Linux Enterprise Server 11 SP3 LTSS mysql as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata libmysql55client_r18-32bit as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysql55client_r18-x86 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysqlclient-devel as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysqlclient_r15-32bit as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 libmysqlclient_r15-x86 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 mysql as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions that are affected are 5.6.38 and prior and 5.7.20 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). CVE-2018-2696 SUSE Linux Enterprise Server 11 SP1 for Teradata:mysql SUSE Linux Enterprise Server 11 SP3 LTSS:mysql SUSE Linux Enterprise Software Development Kit 11 SP4:libmysql55client_r18-32bit SUSE Linux Enterprise Software Development Kit 11 SP4:libmysql55client_r18-x86 SUSE Linux Enterprise Software Development Kit 11 SP4:libmysqlclient-devel SUSE Linux Enterprise Software Development Kit 11 SP4:libmysqlclient_r15-32bit SUSE Linux Enterprise Software Development Kit 11 SP4:libmysqlclient_r15-x86 SUSE Linux Enterprise Software Development Kit 11 SP4:mysql important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H